Lead Physical ICT Security Specialist

The ICT Physical Security Assurance Specialist will under broad direction from the Commonwealth will be responsible for a range of activities, as identified below, contributing to the ICT Security governance measures in the deployment, test and operation of ICT systems to support the delivery of modern mobility solutions for senior government officials, including network, computing systems, desktop delivery solutions, and secure mobility solutions.

Key duties and responsibilities

• Provide advice for constructing / administering deployed ICT systems within Temporary Sensitive Compartmented Information Facilities (T-SCIFs)
• Identify vulnerabilities and deliver planning solutions (i.e. Physical Security planning) to contribute to the development of policy governing T-SCIF design and construction.
• Review site plans, undertake inspections for compliance with Australian Government security protocols, including but not limited to the ISM, PSPF, ASHS, DSPF.
• Provide risk mitigation strategies for ASD and other Commonwealth agencies pertaining to the establishment of T-SCIF’s as a part of the projects IOC and FOC capability requirements.
• Prepare Standard Operating Procedures such as Item Movement Security Plans, in consultation with relevant ICT Security and Communications Security stakeholders.
• Review, and incorporate feedback from ICT Security Advisors and IRAP assessors to ensure T-SCIF compliance with ITSEC and COMSEC policy and procedure.

About the organisation

The Australian Signals Directorate (ASD) is a statutory agency in the Defence portfolio that defends Australia against global threats and advances our national interests through the provision of foreign signals intelligence, cyber security and offensive cyber operations as directed by the Australian Government.

Essential criteria

1.SFIA Skill:Governance Provide advice for implementation of governance frameworks to enable governance activities to be conducted. Within a defined area of accountability, determines the requirements for appropriate governance reflecting the organisation’s values, ethics and wider governance frameworks. Communicates delegated authority, benefits, opportunities, costs, and risks. Review of governance practices with appropriate and sufficient independence from management activity. Develop a framework for the organisation’s contact point to ensures proper relationships between the organisation and external stakeholders.

2.SFIA Skill: Information assurance: Interprets information assurance and security policies and applies these to manage physical risks. Provides advice and guidance to ensure adoption of and adherence to information assurance architectures, strategies, policies, standards and guidelines. Plans, organises and conducts physical assurance and accreditation of complex domain areas, and cross functional areas, and accordance with ICT approved use cases. Undertakes the development of policies, standards and guidelines.

Required criteria

1.The extent to which the candidate demonstrates in their submission (including CV) the ability to perform the Job Duties and Responsibilities set out in the RFQ.

WFH cannot be accommodated.
Interstate based candidates cannot be accommodated.

An Organisational Suitability Assessment (OSA) must be completed prior to commencement.